CVE-2015-6719

Technical details about CVE-2015-6719 are not publicly disclosed in the provided connected documents; no affected products, exploit vectors, or fixes are described here. Monitor EUVD/ENISA entries for updates.

CVE-2015-6709

The CBBBRInvite method in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allows attackers to bypass JavaScript API execution...

CVE-2015-7620

Technical details for CVE-2015-7620 are not publicly available in the provided documents; monitor for updates from official advisories.

CVE-2015-6717

Technical details for CVE-2015-6717 are not publicly available in the provided connected documents. Monitor for official updates from Adobe and vulnerability trackers.

CVE-2015-6701

The ambientIlluminationColor property implementation in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allows attackers to...

CVE-2015-6703

CVE-2015-6703 concerns the loadFlashMovie function in Adobe Reader/Acrobat 10.x (pre-10.1.16) and 11.x (pre-11.0.13), plus various DC/Classic/Continuous releases on Windows and macOS. The vulnerability could allow attackers to obtain sensitive information from process memory by supplying invalid ...

CVE-2015-6723

The ANTrustPropagateAll method in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allows attackers to bypass JavaScript API...

CVE-2015-6691

CVE-2015-6691 describes a use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X. The issue could let ...

CVE-2015-6709

CVE-2015-6709 affects Adobe Reader and Acrobat: Intel/Windows and OS X platforms with versions listed in the initial description (Adobe Reader/Acrobat 10.x up to 10.1.16; 11.x up to 11.0.13; Acrobat/Reader DC Classic before 2015.006.30094; DC Continuous before 2015.009.20069). The issue allows at...

CVE-2015-7621

Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allows attackers to execute arbitrary code via ...

CVE-2015-7618

The CBAutoConfigCommentRepository method in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allows attackers to bypass JavaScri...

CVE-2015-6696

CVE-2015-6696 is a heap-based buffer overflow in Adobe Reader/Acrobat components (notably AcroForm/AGM.dll) on Windows and macOS. Affected are Adobe Reader/Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat/Reader DC Classic before 2015.006.30094 and DC Continuous before 2015.009.20069;...

CVE-2015-6716

The ANSendForFormDistribution method in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allows attackers to bypass JavaScript A...

CVE-2015-6687

Technical details about CVE-2015-6687 are not provided in the supplied documents; no affected products, root cause, or fixes are disclosed. Monitor for updates.

CVE-2015-6714

The Function bind implementation in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allows attackers to bypass JavaScript API...

CVE-2015-7619

Adobe Reader and Acrobat on Windows and macOS are affected by CVE-2015-7619 where the ANShareFile2 method in various 10.x/11.x releases bypasses JavaScript API execution restrictions. Affected ranges include Adobe Reader and Acrobat 10.x before 10.1.16; 11.x before 11.0.13; Acrobat and Acrobat Re...

CVE-2015-6701

Technical details for CVE-2015-6701 are not publicly provided in the connected documents. The sources describe related vulnerabilities but do not specify affected products/versions/root cause/fixes for this CVE. Monitor for updates.

CVE-2015-7615

Use-after-free vulnerability in a SaveAs feature in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allows attackers to execute...

CVE-2015-7614

Technical details about CVE-2015-7614 are not publicly available in the provided documents. Monitor for updates from official advisories; the connected EUVD entries do not supply product/version/impact specifics.

Adobe Acrobat Reader DC Fields Format Action Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The flaw exists within the handling of fields. A...